CVE-2024-37976 – Windows Resume Extensible Firmware Interface Security Feature Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2024-37976
Windows Resume Extensible Firmware Interface Security Feature Bypass Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-37976 • CWE-190: Integer Overflow or Wraparound •
CVE-2024-34663
https://notcve.org/view.php?id=CVE-2024-34663
Integer overflow in libSEF.quram.so prior to SMR Oct-2024 Release 1 allows local attackers to write out-of-bounds memory. • https://security.samsungmobile.com/securityUpdate.smsb?year=2024&month=10 •
CVE-2024-42415
https://notcve.org/view.php?id=CVE-2024-42415
An integer overflow vulnerability exists in the Compound Document Binary File format parser of v1.14.52 of the GNOME Project G Structured File Library (libgsf). A specially crafted file can result in an integer overflow that allows for a heap-based buffer overflow when processing the sector allocation table. • https://gitlab.gnome.org/GNOME/libgsf/-/issues/34 https://talosintelligence.com/vulnerability_reports/TALOS-2024-2069 • CWE-190: Integer Overflow or Wraparound •
CVE-2024-36474
https://notcve.org/view.php?id=CVE-2024-36474
An integer overflow vulnerability exists in the Compound Document Binary File format parser of the GNOME Project G Structured File Library (libgsf) version v1.14.52. A specially crafted file can result in an integer overflow when processing the directory from the file that allows for an out-of-bounds index to be used when reading and writing to an array. • https://gitlab.gnome.org/GNOME/libgsf/-/issues/34 https://talosintelligence.com/vulnerability_reports/TALOS-2024-2068 • CWE-190: Integer Overflow or Wraparound •
CVE-2024-38796 – Integer overflow in PeCoffLoaderRelocateImage
https://notcve.org/view.php?id=CVE-2024-38796
EDK2 contains a vulnerability in the PeCoffLoaderRelocateImage(). An Attacker may cause memory corruption due to an overflow via an adjacent network. A successful exploit of this vulnerability may lead to a loss of Confidentiality, Integrity, and/or Availability. • https://github.com/tianocore/edk2/security/advisories/GHSA-xpcr-7hjq-m6qm • CWE-122: Heap-based Buffer Overflow •